IntroductionIn December 2025, Zscaler ThreatLabz discovered a campaign linked to APT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima), which is a DPRK-backed threat group. In this campaign ...

Check Point research found three critical flaws in Anthropic's Claude Code that allow attackers to execute arbitrary commands ...

If Microsoft 365 deployment tool is not working properly, and you see We couldn't find the specified configuration file, ...

Tech expert ThioJoe compares EXE and MSI files to reveal which Windows installer is best to use.

Microsoft has fixed a "remote code execution" vulnerability in Windows 11 Notepad that allowed attackers to execute local or ...

When Microsoft patched a vulnerability last summer that allowed threat actors to use Windows’ shortcut (.lnk) files in exploits, defenders might have hoped use of this tactic would decline. They were ...

A Nigerian national was sentenced to eight years in prison for hacking multiple tax preparation firms in Massachusetts and filing fraudulent tax returns seeking over $8.1 million in refunds.

Hackers are hijacking email accounts and sending fake invites that install remote access tools. Even your antivirus may not ...

By putting conflicting metadata in LNK files, a researcher found four new ways to spoof targets, hide arguments, and run unintended programs in Windows Explorer.

Signing code is a critical process for maintaining software integrity and developer trust. On a Windows-based system, Authenticode signing provides assurance after a program or driver has been posted ...

UnsolicitedBooker targets Central Asian telecoms with LuciDoor and MarsSnake, while PseudoSticky and Cloud Atlas hit Russia.

In her latest briefing before the United Nations Security Council, the UN envoy to Libya, Hanna Tetteh, once again raised the ...